公开(公告)号：US20240143763A1

公开(公告)日：2024-05-02

申请号：US17979482

申请日：2022-11-02

Applicant: VMware, Inc.

Inventor： Mandar NANIVADEKAR ,  Sachin SHINDE ,  Bharath Kumar CHANDRASEKHAR

IPC: G06F21/56 ,  G06F21/53 ,  G06F21/54

CPC classification number: G06F21/568 ,  G06F21/53 ,  G06F21/54 ,  G06F2221/033

Abstract: A method of protecting an endpoint against a security threat detected at the endpoint, wherein the endpoint includes, in memory pages of the endpoint, an operating system (OS), a separate software entity, and remediation code, includes the steps of: transferring control of virtual CPUs (vCPUs) of the endpoint from the OS to the separate software entity; and while the separate software entity controls the vCPUs, storing, in an interrupt dispatch table, an instruction address corresponding to an interrupt, wherein the remediation code is stored at the instruction address, and replacing a next instruction to be executed by the OS, with an interrupt instruction, wherein the interrupt is raised when the OS executes the interrupt instruction, and the remediation code is executed as a result of handling of the interrupt that is raised.

公开(公告)号：US20210097167A1

公开(公告)日：2021-04-01

申请号：US16588614

申请日：2019-09-30

Applicant: VMware, Inc.

Inventor： Nakul OGALE ,  Shirish VIJAYVARGIYA ,  Sachin SHINDE

IPC: G06F21/52

Abstract: A process monitoring methodology is disclosed. In a computer-implemented method, a selection of a process to be monitored is received. The process is to be at least partially performed using a component of a computing environment. An expected operating parameter of the process is determined. The process is also monitored to determine an actual operating parameter of the process. The actual operating parameter of the process is compared with the expected operating parameter of the process to generate a comparison result. An operation is then automatically performed based upon the comparison result.

公开(公告)号：US20210286877A1

公开(公告)日：2021-09-16

申请号：US16871088

申请日：2020-05-11

Applicant: VMWARE, INC.

Inventor： SHIRISH VIJAYVARGIYA ,  Vasantha Kumar DHANASEKAR ,  Sachin SHINDE ,  Rayanagouda Bheemanagouda PATIL

IPC: G06F21/56 ,  G06F11/30 ,  G06F21/60 ,  G06F9/455

Abstract: A next generation antivirus (NGAV) security solution in a virtualized computing environment includes a security sensor at a virtual machine that runs on a host and a security engine remote from the host. The integrity of the NGAV security solution is increased, by providing a verification as to whether a verdict issued by the security engine has been successfully enforced by the security sensor to prevent execution of malicious code at the virtual machine.